Where can the SOC 1 Report, SOC 2 Report or SOC 3 Report for cloud hosted products by Carbon Black be found?

• Carbon Black Cloud
• Carbon Black Hosted EDR

• Existing Broadcom direct customers can open a Support Case to request a copy of the relevant SOC 1 or SOC 2 Report(s)
• Prospective Customers will need to work with their Account Representative to access the SOC 1 or SOC 2 Report(s). 
  • If your Account Representative is unknown, create a Non-Technical Support Case with Global Customer Assistance (GCA).
• Customers through Catalyst partners.
  • Open a support case with your catalyst partner. 
  • The partner will create a Compliance case with Broadcom (BEP-Jira) and provide you with a secure link to download the report. 
• More details, and any applicable SOC 3 reports, can be found via the Broadcom Trust Center.
• A signed non-disclosure agreement will be required for any SOC 1 or SOC 2 Report.

• System and Organizational Controls (SOC) Reports are independent third-party examination reports that demonstrate how Broadcom meets compliance controls and objectives.
• SOC Reports are renewed annually, approximately 12 months after the previous date of the SOC Report.
• SOC Reports are SAAS products only. Carbon Black App Control and On-prem EDR do not apply to this report.